CVE-2025-10071
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-07

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability has been found in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /cancelar-enturmacao-em-lote/. Such manipulation leads to improper access controls. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-07
Last Modified
2026-04-29
Generated
2026-05-27
AI Q&A
2025-09-08
EPSS Evaluated
2026-05-25
NVD
CVE-2025-10071
EUVD
EUVD-2025-27099
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
portabilis i-educar to 2.10.0 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-266 A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in Portabilis i-Educar up to version 2.10, specifically in the file /cancelar-enturmacao-em-lote/. It allows improper access controls, meaning an attacker can potentially bypass restrictions and access or manipulate data or functions they should not be able to. The attack can be performed remotely and the exploit has been publicly disclosed.


How can this vulnerability impact me? :

The vulnerability can lead to unauthorized access or actions within the affected system, potentially compromising confidentiality, integrity, and availability of data. Since it allows improper access controls remotely, attackers might manipulate or access sensitive information or disrupt normal operations.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart